Find XSS payloads that actually work by filtering them based on real-world constraints instead of blind payload spraying.
☆261Jun 6, 2026Updated last week
Alternatives and similar repositories for XSSNow
Users that are interested in XSSNow are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ExecEvasion is a lightweight execution-evasion toolkit that generates command variants designed to bypass naive filters and WAF rules by …☆52Jan 31, 2026Updated 4 months ago
- Browser-based Android security auditing tool.☆75May 14, 2026Updated last month
- ☆30Jan 19, 2026Updated 4 months ago
- This lab is for **EDUCATIONAL PURPOSES ONLY**. Use it responsibly and only on systems you own or have explicit permission to test. Do not…☆21Feb 20, 2026Updated 3 months ago
- ☆90Sep 13, 2025Updated 9 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Droid LLM Hunter is a tool to scan for vulnerabilities in Android applications using Large Language Models (LLMs).☆140Jun 4, 2026Updated last week
- Multi-agent AI system using GPT-4o, DeepSeek v3, and Llama 3.3 to detect if CVE vulnerabilities were exploited as zero-days. Analyzes…☆20Feb 13, 2026Updated 4 months ago
- ☆46Mar 30, 2026Updated 2 months ago
- a critical memory disclosure vulnerability in MongoDB's zlib compression handling. This tool allows security researchers to extract sensi…☆31Dec 27, 2025Updated 5 months ago
- ☆51Apr 30, 2026Updated last month
- #Hackertea is a sleek terminal user interface written in Golang, designed to bring HackerNews articles directly to your fingertips. Power…☆51Updated this week
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆31Apr 12, 2026Updated 2 months ago
- 🎭 Reveal the identity behind a share link☆199May 26, 2026Updated 2 weeks ago
- Bug Bounty Setup Tools On Fresh VPS. This scripts automatically installs top bug bounty tools and set up environment in newly installed …☆32Jan 27, 2026Updated 4 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Meteorology reports and forecasts, satellite pass predictions, communications decoding, and imagery analysis for NOAA satellites 🌧 🛰 📡☆18Jul 30, 2023Updated 2 years ago
- A little tool to play with Windows security☆154Apr 10, 2026Updated 2 months ago
- Burp Bounty Lab provides a safe, local target to validate that your Burp Bounty Pro scanner profiles detect vulnerabilities correctly. It…☆44May 15, 2026Updated 3 weeks ago
- ☆38May 9, 2026Updated last month
- ☆253Oct 19, 2025Updated 7 months ago
- Custom Trickest Workflows☆12Oct 26, 2023Updated 2 years ago
- A list of commands, tools and notes about enumerating and exploiting Active Directory and how to defend against these attacks☆23Jun 22, 2021Updated 4 years ago
- 0xJS is an AI-powered JavaScript Security Tool☆60Apr 16, 2026Updated last month
- Monitor your targets and hunt fresh assets in real time.☆178Feb 23, 2026Updated 3 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆29Jun 13, 2025Updated last year
- Collection of exploits developed by your friendly clown☆15Oct 18, 2025Updated 7 months ago
- ☆26Sep 5, 2025Updated 9 months ago
- Grafana scanner with all public CVEs that I collected in one script to make grafana testing easier☆233May 30, 2026Updated 2 weeks ago
- A tool for analyzing syntactic and semantic properties of C Preprocessor macros in C programs☆12Aug 27, 2025Updated 9 months ago
- Automated red-team toolkit for stress-testing LLM defences - Vector Attacks on LLMs (Gendalf Case Study)☆114Jul 30, 2025Updated 10 months ago
- Subdomain Enumerator and Simple Crawler☆372May 22, 2026Updated 3 weeks ago
- WebRecon is an advanced Open Source Intelligence (OSINT) web reconnaissance tool designed for cybersecurity professionals, penetration te…☆281Mar 20, 2026Updated 2 months ago
- Glass Cage is a zero-click PNG-based RCE chain in iOS 18.2.1, bypassing LockDown mode protection by exploiting ImageIO (CVE-2025-43300), …☆38Jan 11, 2026Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆64Apr 13, 2025Updated last year
- XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characte…☆54Jan 16, 2026Updated 4 months ago
- ☆258Dec 10, 2025Updated 6 months ago
- ☆44May 4, 2025Updated last year
- ☆55Oct 13, 2025Updated 8 months ago
- This was made with the intention of providing evidence of work done towards furthering education in cyber security.☆12May 12, 2022Updated 4 years ago
- Another version of .NET loader provides capabilities of bypassing ETW and AMSI, utilizing VEH for syscalls and loading .NET assemblies☆50Jul 6, 2025Updated 11 months ago